CVE-2020-21487

Cross Site Scripting vulnerability found in Netgate pfSense 2.4.4 and ACME package v.0.6.3 allows attackers to execute arbitrary code via the RootFolder field of acmecertificates.php...

PT-2023-11591 · Pfsense +1 · Pfsense +1

Name of the Vulnerable Software and Affected Versions: pfSense version 2.4.4 ACME package version 0.6.3 Description: A Cross Site Scripting issue allows attackers to execute arbitrary code via the RootFolder field of "acme certificates.php". Recommendations: For pfSense version 2.4.4, update the...

CVE-2020-21219

Cross Site Scripting XSS vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acmecertificateedit.php page of the ACME package...

CVE-2020-21219

Cross Site Scripting XSS vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acmecertificateedit.php page of the ACME package...

Netgate pfSense CE 跨站脚本漏洞

Netgate pfSense CE is a free and open source FreeBSD-based firewall and router software. A security vulnerability exists in Netgate pf Sense version 2.4.4-Release-p3, Netgate ACME package version 0.6.3. An attacker can exploit this vulnerability to execute arbitrary code via the RootFolder field ...